d912cf04cd5fe5bb16f009698e804f0411a0114c5a0fc4bc0f269b980a00bc21

Sharing

Copy URL

Twitter E-mail

General

Target

d912cf04cd5fe5bb16f009698e804f0411a0114c5a0fc4bc0f269b980a00bc21
Size

744KB
MD5

a5e25f2d3a70cd9568c18fda023c4c38
SHA1

17d6a61957c142b2c0da91bf6c0aadbee8a3d901
SHA256

d912cf04cd5fe5bb16f009698e804f0411a0114c5a0fc4bc0f269b980a00bc21
SHA512

14a7614ac2bd267a3746103c203c03db08ca795750c5ec38829057deb2171af2c270308098a077960d5b0cbb57054b6ee82a60122b1ea5bd476d25deddf31743
SSDEEP

12288:HmV0UqEZp2FzvvBU1lFuF7EQ9t6ZC9t6ZC9t6ZC9t6ZC9t6ZC9t6ZC9t6ZC9t6Zd:HmV0kgz3BKOYAIGIGIGIGIGIGIGIwAI8

Score

N/A

Malware Config

Signatures

Files

d912cf04cd5fe5bb16f009698e804f0411a0114c5a0fc4bc0f269b980a00bc21
.exe windows x86

f7305452ec6de2f28b7ac73434312841

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_LOCAL_SYMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

kernel32

RaiseException
GetCommandLineA
HeapSize
GetCPInfo
LockResource
GetCurrentProcessId
GetEnvironmentStrings
Sleep
GlobalUnlock
GetThreadLocale
GetConsoleCP
GlobalFree
LCMapStringW
GetLastError
InterlockedIncrement
ExitProcess
GetFileType
CreateEventA
WaitForMultipleObjects
lstrcmpA
GetProcessHeap
GetProcAddress
GetWindowsDirectoryA
DeleteFileA
LoadLibraryA
TlsAlloc
GetTickCount
QueryPerformanceCounter
FreeLibrary
LoadLibraryW
EnterCriticalSection
WriteConsoleW
SetCurrentDirectoryA
LeaveCriticalSection
GetVersion
SetEndOfFile
TerminateProcess
GetSystemDirectoryA
MulDiv
GetModuleHandleA
CreateMutexA
InterlockedDecrement
UnhandledExceptionFilter
GetModuleFileNameA
HeapAlloc
IsDebuggerPresent
SetLastError
TlsGetValue
FindClose
LoadResource
SetFilePointer
FormatMessageW
LocalFree
GetOEMCP
GetFullPathNameA
GetStringTypeW
HeapReAlloc
GetSystemTimeAsFileTime
WriteFile
InterlockedExchange
WideCharToMultiByte
FreeEnvironmentStringsW
lstrcatA
LocalAlloc
GetLocaleInfoA
GetConsoleMode
GetCurrentProcess
DeleteCriticalSection
FreeEnvironmentStringsA
HeapFree
HeapDestroy
GetFileAttributesA
FileTimeToSystemTime
GetStdHandle
VirtualAlloc
GetStartupInfoA
GetEnvironmentStringsW
SetHandleCount
TlsSetValue
GetEnvironmentVariableA
GetVersionExA
RtlUnwind
GetACP
MultiByteToWideChar
GetStringTypeA
LCMapStringA
ReadFile
CloseHandle
GetCurrentThreadId
HeapCreate
InitializeCriticalSection
VirtualFree

advapi32

RegQueryValueExA
RegCreateKeyExA
RegSetValueExA
RegCloseKey
RegOpenKeyExA

user32

SetCursor
ReleaseDC
GetFocus
CallWindowProcA
GetClientRect
InvalidateRect
GetSysColor
EndDialog
GetDesktopWindow
TrackPopupMenu
ScreenToClient
GetDlgItem
CheckMenuItem
SetWindowTextA
SetWindowLongA
PostMessageA
IsIconic
GetSystemMetrics
BeginPaint
SetCapture
SetFocus
FillRect
SetTimer
GetWindowLongA
EnableMenuItem
LoadStringA
GetWindow
IsWindowEnabled
TranslateMessage
ShowWindow
GetParent
DestroyWindow
DrawTextA
GetCursorPos
GetDC
IsWindow
SetWindowPos
PostQuitMessage
MoveWindow
KillTimer
DefWindowProcA
UpdateWindow
DispatchMessageA
GetMessageA
CreateWindowExA
RegisterClassExA
LoadCursorA
LoadIconA

Sections

.text
Size: 52KB - Virtual size: 49KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 676KB - Virtual size: 673KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.data
Size: 12KB - Virtual size: 13KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

Sharing

General

Malware Config

Signatures

Files

f7305452ec6de2f28b7ac73434312841

Headers

File Characteristics

Imports

kernel32

advapi32

user32

Sections

.text Size: 52KB - Virtual size: 49KB

.rdata Size: 676KB - Virtual size: 673KB

.data Size: 12KB - Virtual size: 13KB

.text
Size: 52KB - Virtual size: 49KB

.rdata
Size: 676KB - Virtual size: 673KB

.data
Size: 12KB - Virtual size: 13KB